$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa File: 3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa (raw, json) Hash identifier: lGbFv1Yx7kekzAxCIqqlSK1KSc9+T1sass0b9dqX0rM= Subject key identifier: 6E:91:00:85:BC:E5:63:89:77:F8:44:E7:CB:87:BE:47:20:3E:28:1E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0B88E335100681FDF80F77C875B8B5203A8303A3 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa Signing time: Tue 10 Feb 2026 00:00:37 +0000 ROA not before: Tue 10 Feb 2026 00:00:37 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:88:e3:35:10:06:81:fd:f8:0f:77:c8:75:b8:b5:20:3a:83:03:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Feb 10 00:00:37 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=112cd06f5e1ab8fc41e30c5ee0b0e7ecf230e4b0ffda4ff89f16f98104192692, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:be:78:5f:e1:0b:49:bd:ad:c2:02:3a:31:c9: 45:44:0b:16:2e:ba:dd:a3:24:8d:18:b5:8b:af:ec: 52:af:52:1f:a7:26:f3:dc:71:a6:24:f8:55:8f:61: 16:37:0a:2f:41:01:f7:0d:43:b3:24:a0:e4:17:41: b9:75:02:db:03:58:df:79:fe:0a:65:64:ca:a4:d0: 5f:65:5f:38:38:71:41:b8:63:2d:da:08:73:4a:04: 66:f1:87:f8:52:a5:70:05:c7:a8:2d:8d:ef:c1:bd: a6:1c:af:47:1f:80:b6:47:99:cf:94:0f:c8:76:1c: b0:7f:84:fb:45:0c:aa:ed:72:69:9e:ee:7f:85:3c: 73:04:b9:68:30:5d:42:96:f7:cd:3a:a6:86:1e:63: 29:80:41:7b:bc:a9:5a:da:f4:bf:2f:ec:b5:0b:d2: d2:d8:09:27:63:ae:2e:da:db:9c:a8:d8:a5:5d:31: 26:c1:0f:79:52:15:82:71:6e:d7:f9:f2:b8:8b:f5: b8:e7:ef:eb:84:1a:77:c2:96:4a:41:a1:c8:57:60: 00:f3:eb:20:19:50:73:8c:cc:68:14:1c:85:7c:d3: 45:a4:8a:80:e8:ac:e4:9b:f4:1c:e6:7a:b6:fe:38: cc:19:f0:16:db:a1:1e:0f:c8:28:89:f7:3c:63:0f: 53:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:91:00:85:BC:E5:63:89:77:F8:44:E7:CB:87:BE:47:20:3E:28:1E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 26:71:cf:bc:70:70:29:00:b4:fc:1b:5b:b1:9c:a4:dd:4d:2e: 40:30:83:99:b6:54:34:68:97:a9:9b:f1:c8:8d:10:d1:18:a0: d8:44:7a:93:a5:9f:dc:1a:ee:34:dc:11:95:a0:ea:5f:a2:0f: cb:8e:af:e0:bb:22:cb:c2:31:3a:8c:ea:9b:19:5e:f8:2c:b3: 7a:03:4b:87:2c:b1:1b:09:65:fb:c0:f0:33:88:87:82:a3:4f: 5a:9d:b3:a8:1a:41:f4:22:e9:b1:cb:ca:38:cf:c5:47:aa:3c: 20:92:e9:b2:77:93:1d:1c:93:73:1d:45:32:84:af:94:b2:ac: 9b:5c:f0:40:21:9b:15:19:24:7d:55:a0:ac:73:b4:3d:ed:5f: 5b:b6:79:90:c7:a2:19:73:0f:0d:af:39:80:af:3b:b7:66:00: 11:5b:9e:61:98:9d:7f:55:f6:86:3a:27:39:9b:47:7d:47:b3: 65:6b:99:14:8b:d5:af:68:bd:ef:09:16:73:69:54:5d:69:66: 1a:5c:e5:8a:53:81:77:09:b8:44:2e:ee:4b:5e:47:b0:1e:77: 5a:07:41:7f:5f:b7:05:54:7e:c1:02:94:53:71:0d:8e:5c:49: 31:bc:f3:1f:40:ea:28:33:42:df:2a:1f:b2:2b:e3:3b:a4:32: 34:60:07:9b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC4jjNRAGgf34D3fIdbi1IDqDA6MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwMjEwMDAwMDM3WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTJjZDA2ZjVlMWFiOGZjNDFlMzBjNWVlMGIwZTdlY2Yy MzBlNGIwZmZkYTRmZjg5ZjE2Zjk4MTA0MTkyNjkyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3vnhf4QtJva3CAjoxyUVECxYuut2jJI0YtYuv7FKvUh+n JvPccaYk+FWPYRY3Ci9BAfcNQ7MkoOQXQbl1AtsDWN95/gplZMqk0F9lXzg4cUG4 Yy3aCHNKBGbxh/hSpXAFx6gtje/BvaYcr0cfgLZHmc+UD8h2HLB/hPtFDKrtcmme 7n+FPHMEuWgwXUKW9806poYeYymAQXu8qVra9L8v7LUL0tLYCSdjri7a25yo2KVd MSbBD3lSFYJxbtf58riL9bjn7+uEGnfClkpBochXYADz6yAZUHOMzGgUHIV800Wk ioDorOSb9Bzmerb+OMwZ8BbboR4PyCiJ9zxjD1N1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbpEAhbzlY4l3+ETny4e+RyA+KB4wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNlMGRhY2UzLTBlMmEtNDI1Mi04YzkyLTRjN2VlYzRjMzU4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBACZxz7xwcCkAtPwbW7GcpN1NLkAw g5m2VDRol6mb8ciNENEYoNhEepOln9wa7jTcEZWg6l+iD8uOr+C7IsvCMTqM6psZ Xvgss3oDS4cssRsJZfvA8DOIh4KjT1qds6gaQfQi6bHLyjjPxUeqPCCS6bJ3kx0c k3MdRTKEr5SyrJtc8EAhmxUZJH1VoKxztD3tX1u2eZDHohlzDw2vOYCvO7dmABFb nmGYnX9V9oY6JzmbR31Hs2VrmRSL1a9ove8JFnNpVF1pZhpc5YpTgXcJuEQu7kte R7Aed1oHQX9ftwVUfsEClFNxDY5cSTG88x9A6igzQt8qH7Ir4zukMjRgB5s= -----END CERTIFICATE-----Generated at Sun Mar 1 21:53:40 2026 by rpki-client